CN113365268A - Intelligent card with encryption and decryption functions, intelligent terminal, data communication system and method - Google Patents
Intelligent card with encryption and decryption functions, intelligent terminal, data communication system and method Download PDFInfo
- Publication number
- CN113365268A CN113365268A CN202110431473.7A CN202110431473A CN113365268A CN 113365268 A CN113365268 A CN 113365268A CN 202110431473 A CN202110431473 A CN 202110431473A CN 113365268 A CN113365268 A CN 113365268A
- Authority
- CN
- China
- Prior art keywords
- intelligent terminal
- security chip
- encryption
- data
- terminal app
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000004891 communication Methods 0.000 title claims abstract description 118
- 230000006870 function Effects 0.000 title claims abstract description 39
- 238000000034 method Methods 0.000 title claims abstract description 18
- 238000012545 processing Methods 0.000 claims abstract description 41
- 239000003999 initiator Substances 0.000 claims description 47
- 230000005540 biological transmission Effects 0.000 claims description 26
- 210000001503 joint Anatomy 0.000 claims description 4
- 239000000306 component Substances 0.000 description 11
- RYGMFSIKBFXOCR-UHFFFAOYSA-N Copper Chemical compound [Cu] RYGMFSIKBFXOCR-UHFFFAOYSA-N 0.000 description 5
- 229910052802 copper Inorganic materials 0.000 description 5
- 239000010949 copper Substances 0.000 description 5
- 238000010586 diagram Methods 0.000 description 3
- 238000010295 mobile communication Methods 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 238000003032 molecular docking Methods 0.000 description 2
- 230000009286 beneficial effect Effects 0.000 description 1
- 239000008358 core component Substances 0.000 description 1
- 230000008878 coupling Effects 0.000 description 1
- 238000010168 coupling process Methods 0.000 description 1
- 238000005859 coupling reaction Methods 0.000 description 1
- 230000007547 defect Effects 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 230000000694 effects Effects 0.000 description 1
- ZXQYGBMAQZUVMI-GCMPRSNUSA-N gamma-cyhalothrin Chemical compound CC1(C)[C@@H](\C=C(/Cl)C(F)(F)F)[C@H]1C(=O)O[C@H](C#N)C1=CC=CC(OC=2C=CC=CC=2)=C1 ZXQYGBMAQZUVMI-GCMPRSNUSA-N 0.000 description 1
- 230000001939 inductive effect Effects 0.000 description 1
- 238000012360 testing method Methods 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/03—Protecting confidentiality, e.g. by encryption
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06K—GRAPHICAL DATA READING; PRESENTATION OF DATA; RECORD CARRIERS; HANDLING RECORD CARRIERS
- G06K19/00—Record carriers for use with machines and with at least a part designed to carry digital markings
- G06K19/06—Record carriers for use with machines and with at least a part designed to carry digital markings characterised by the kind of the digital marking, e.g. shape, nature, code
- G06K19/067—Record carriers with conductive marks, printed circuits or semiconductor circuit elements, e.g. credit or identity cards also with resonating or responding marks without active components
- G06K19/07—Record carriers with conductive marks, printed circuits or semiconductor circuit elements, e.g. credit or identity cards also with resonating or responding marks without active components with integrated circuit chips
- G06K19/077—Constructional details, e.g. mounting of circuits in the carrier
- G06K19/07749—Constructional details, e.g. mounting of circuits in the carrier the record carrier being capable of non-contact communication, e.g. constructional details of the antenna of a non-contact smart card
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/04—Key management, e.g. using generic bootstrapping architecture [GBA]
- H04W12/041—Key generation or derivation
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/30—Security of mobile devices; Security of mobile applications
- H04W12/37—Managing security policies for mobile devices or for controlling mobile applications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/40—Security arrangements using identity modules
- H04W12/47—Security arrangements using identity modules using near field communication [NFC] or radio frequency identification [RFID] modules
Abstract
The invention discloses an intelligent card with encryption and decryption functions, an intelligent terminal, a data communication system and a data communication method, wherein the intelligent card comprises a card body and an in-card circuit integrated in the size space of the card body; the circuit in the card comprises an MCU security chip, and key information is stored in the MCU security chip; the MCU safety chip is internally provided with an encryption/decryption processing module for encrypting/decrypting received communication data sent by the intelligent terminal APP; the circuit in the card is used for connecting the MCU security chip and the intelligent terminal, the data link is used for sending the communication data received by the intelligent terminal APP to the MCU security chip and is also used for sending the communication data encrypted/decrypted by the MCU security chip to the intelligent terminal APP. The method and the device can realize the communication safety between the intelligent terminals APP and protect the safety of personal privacy data.
Description
Technical Field
The invention relates to the technical field of communication, in particular to an intelligent card with encryption and decryption functions, an intelligent terminal, a data communication system and a data communication method.
Background
Along with the popularization of intelligent terminals and the wide development of mobile internet application, the data communication safety problem of mobile communication application is increasingly serious, and the personal privacy data safety protection problems of text information, voice remaining words, voice calls and the like of mobile terminal application APP are more prominent. At present, various applications APP try to solve the safety problem by adopting a software method, but once a Trojan horse in a mobile phone is detected, the effect of the software encryption method is very little.
Disclosure of Invention
The invention aims to overcome the defects of the prior art and provides an intelligent card with encryption and decryption functions, an intelligent terminal, a data communication system and a data communication method, which can realize the communication safety between intelligent terminals APP and protect the personal privacy data safety.
The technical scheme adopted by the invention for solving the technical problems is as follows:
on one hand, the intelligent card with the encryption and decryption functions comprises a card body and an in-card circuit integrated in the size space of the card body; the circuit in the card comprises an MCU security chip, and key information is stored in the MCU security chip; the MCU security chip is internally provided with an encryption/decryption processing module for encrypting/decrypting the received communication data sent by the intelligent terminal APP, and the encryption/decryption processing module encrypts the communication data to be decrypted through an encryption algorithm and decrypts the communication data to be decrypted through stored key information; the circuit in the card is used for connecting the MCU security chip and the intelligent terminal, the data link is used for sending the communication data received by the intelligent terminal APP to the MCU security chip and is also used for sending the communication data encrypted/decrypted by the MCU security chip to the intelligent terminal APP.
Preferably, the intelligent terminal APP further sends unique identifiers of other intelligent terminals APP communicating with the intelligent terminal APP to the MCU security chip; the MCU security chip takes the unique identifier as a public key to carry out encryption operation on communication data to be encrypted; the unique identifier comprises a telephone number, a mailbox or a micro-signal code.
Preferably, the data link is formed by additionally arranging a component matched with the existing data transmission equipment of the intelligent terminal on the intelligent card with the encryption and decryption functions so as to realize matching butt joint with the intelligent terminal, thereby realizing data transmission of the intelligent terminal/external card reading and encryption and decryption processing module.
Preferably, the component is a bluetooth protocol processing component and/or an NFC protocol processing component disposed in the radio frequency driving unit.
Preferably, the data link adopts the ISO7816 interface of the MCU security chip and the intelligent terminal as a connection channel, and realizes data transmission between the encryption/decryption processing module of the MCU security chip and the intelligent terminal under the ISO7816 interface by expanding the APDU instruction set.
Preferably, the data link adopts a data transmission channel which is newly added between the MCU security chip and the intelligent terminal and is embodied in a hardware mode, so that data transmission between the encryption and decryption processing module of the MCU security chip and the intelligent terminal is realized.
In a second aspect, an intelligent terminal comprises the intelligent card with encryption and decryption functions; the intelligent terminal comprises an intelligent terminal APP which is installed on the intelligent terminal and can carry out text and/or voice communication, and the intelligent card is connected with the intelligent terminal APP; the intelligent terminal supports a Bluetooth protocol and/or an NFC protocol.
In a third aspect, a data communication system comprises an intelligent terminal APP of an initiator, an MCU security chip of the initiator, an intelligent terminal APP of a receiver and an MCU security chip of the receiver;
the MCU security chip of the initiator is used for carrying out encryption operation on communication data to be encrypted and returning the encrypted communication data to the intelligent terminal APP of the initiator;
the intelligent terminal APP of the initiator is used for sending the unique identifier of the intelligent terminal APP of the receiver and communication data to be sent by the initiator to the MCU security chip of the initiator through a first data link, and is also used for sending encrypted communication data to the intelligent terminal APP of the receiver;
the intelligent terminal APP of the receiving party is used for sending the received encrypted communication data to the MCU security chip of the receiving party through the second data link;
and the MCU security chip of the receiver is used for decrypting the encrypted communication data by using the stored key information and returning the decrypted communication data to the intelligent terminal APP of the receiver.
In a fourth aspect, a data communication method includes:
s402, the intelligent terminal APP of the initiator sends the unique identifier of the intelligent terminal APP of the receiver and communication data to be sent by the initiator to the MCU security chip of the initiator through a first data link;
s404, the MCU security chip of the initiator uses the unique identifier as a public key to perform encryption operation on communication data to be encrypted, and returns the encrypted communication data to the intelligent terminal APP of the initiator;
s406, the intelligent terminal APP of the initiator sends the encrypted communication data to the intelligent terminal APP of the receiver;
s408, the intelligent terminal APP of the receiving party sends the received encrypted communication data to the MCU security chip of the receiving party through a second data link;
s410, the MCU security chip of the receiver decrypts the encrypted communication data by using the stored key information, and returns the decrypted communication data to the intelligent terminal APP of the receiver.
Preferably, S402 further includes:
s401, storing key information in an independent storage space divided in the MCU security chip; the key information is related to the unique identifier of the intelligent terminal APP.
Compared with the prior art, the invention has the following beneficial effects:
(1) the invention relates to an intelligent card with encryption and decryption functions, which is characterized in that an independent storage space is divided in a storage module of an MCU security chip of a circuit in the card, and key information for decrypting received encrypted data is stored; encrypting/decrypting received communication data sent by an intelligent terminal APP through an encryption/decryption processing module, specifically, encrypting the communication data to be encrypted through an encryption algorithm when the intelligent terminal is used as a sender, and decrypting the communication data to be decrypted through stored key information when the intelligent terminal is used as a receiver; because the key generation logic and the personal key information generated by the key generation logic are independently completed and stored in the intelligent card, and because the intelligent card (such as an SIM card) has safety, irreproducibility and uniqueness and other technical characteristics, the intelligent card (such as the SIM card) is adopted as a carrier (namely a personal U shield) of the personal data security SE, and the intelligent card has more advanced and convenient points than the intelligent terminal (a mobile phone terminal or other mobile electronic equipment) is selected, the communication security between the intelligent terminals APP can be realized, and the personal privacy data security is protected;
(2) the intelligent terminal APP of the initiator uses the unique identifier (telephone number, mailbox or micro signal code and the like) of the intelligent terminal APP of the receiver as a public key to perform encryption operation and processing on data to be encrypted, and the unique identifier can be acquired when the terminal APP of the initiator initiates communication (text or voice and the like) (for example, a communication request is initiated to the receiver through the telephone number or the micro signal code), so that the unique identifier is not required to be stored in advance and can ensure the uniqueness;
(3) the data link of the MCU security chip and the intelligent terminal is preferably a non-contact data link, only a physical data transmission channel needs to be newly opened up, the intelligent terminal does not need to be customized, the type of an operating system of the intelligent terminal is not limited, and the MCU security chip and the data link of the intelligent terminal have wider application.
The invention is further explained in detail with the accompanying drawings and the embodiments; however, the smart card with encryption and decryption functions, the smart terminal, the data communication system and the data communication method of the present invention are not limited to the embodiments.
Drawings
FIG. 1 is a schematic block circuit diagram of a smart card with encryption and decryption functions according to the present invention;
fig. 2 is a schematic transmission diagram of a smart card with encryption and decryption functions and a smart terminal APP according to an embodiment of the present invention;
fig. 3 is a block diagram of a data communication system of an embodiment of the present invention;
fig. 4 is a flow chart of a data communication method of an embodiment of the present invention.
Detailed Description
The invention is further described below by means of specific embodiments.
Referring to fig. 1 and 2, a smart card 7 with encryption and decryption functions includes a card body and an in-card circuit integrated in a dimensional space of the card body; the circuit in the card comprises an MCU security chip 1, and key information is stored in the MCU security chip 1; the MCU security chip 1 is internally provided with an encryption/decryption processing module 12 for encrypting/decrypting received communication data sent by the intelligent terminal APP 6, the encryption/decryption processing module 12 encrypts the communication data to be decrypted through an encryption algorithm and decrypts the communication data to be decrypted through stored key information; the circuit in the card is used for connecting MCU security chip 1 and intelligent terminal 5's data link, data link is used for sending intelligent terminal APP 6 received communication data for MCU security chip 1, still is used for with communication data after MCU security chip 1 encryption/decryption sends intelligent terminal APP 6.
In this embodiment, the intelligent terminal 5 includes a mobile phone intelligent terminal 5, and the intelligent card 7 is a mobile phone intelligent card 7 including an SIM card and the like. Of course, other intelligent terminals 5 may be included, in which the smart card 7 is inserted, as long as the smart card 7 has security, non-duplicability and uniqueness, and can serve as a carrier for the personal data security SE.
The APP refers to a client application program, and in this embodiment, refers to an application program capable of performing remote text communication, voice conversation, or voice message, such as an application program of a network telephone, WeChat, QQ, or the like.
Specifically, when the intelligent terminal 5 comprises a mobile phone intelligent terminal 5 and the intelligent card is a 7-bit mobile phone intelligent card 7, the in-card circuit further comprises a first radio frequency antenna 3, a radio frequency driving unit 2 and an SIM card standard copper connecting contact 4; the first radio frequency antenna 3, the radio frequency driving unit 2, the MCU security chip 1 and the SIM card standard copper connection contact 4 are connected in sequence. And the MCU security chip 1 stores user identity authentication information 11 for realizing mobile communication function, the MCU security chip 1 is connected to the mobile phone intelligent terminal 5 through the SIM card standard copper connecting contact 4 so as to send the user identity authentication information 11 to the mobile phone intelligent terminal 5, and user identity authentication is carried out between the mobile phone intelligent terminal 5 and a telecom operator.
In this embodiment, the intelligent terminal APP 6 further sends the unique identifier of another intelligent terminal APP 6 communicating with the intelligent terminal APP 6 to the MCU security chip 1; the MCU security chip 1 takes the unique identifier as a public key to carry out encryption operation on communication data to be encrypted; the unique identifier comprises a telephone number, a mailbox or a micro-signal code. The unique identifier can be obtained when the terminal APP of the initiator initiates communication (text or voice and the like) (for example, a communication request is initiated to the receiver through a telephone number, a mailbox number or a micro signal code), so that the unique identifier does not need to be stored in advance and the uniqueness can be ensured.
Specifically, an impedance matching circuit 31 is further disposed between the rf driving unit 2 and the first rf antenna 3.
In this embodiment, the data link is configured by adding a component matching with existing data transmission equipment of the intelligent terminal 5 to the smart card 7(SIM card) with encryption and decryption functions to realize matching and docking with the intelligent terminal 5, so as to realize data transmission between the intelligent terminal 5 and the encryption and decryption processing module 12. The technical standard of an ISO7816 interface and an APDU instruction does not need to be changed when the data link is established.
The components include a bluetooth protocol processing component 21 and/or an NFC protocol processing component 22 provided in the radio frequency drive unit 2.
Of course, the data link may also use the ISO7816 interface between the MCU security chip 1 and the intelligent terminal 5 as a connection channel, and implement data transmission between the encryption/decryption processing module 12 of the MCU security chip 1 and the intelligent terminal 5 under the ISO7816 interface by extending the APDU instruction set.
And the data link can also adopt a data transmission channel which is newly added between the MCU security chip 1 and the intelligent terminal 5 and is embodied in a hardware mode to realize data transmission between the encryption and decryption processing module 12 of the MCU security chip 1 and the intelligent terminal 5.
The data transmission channel embodied in a hardware manner is a wired transmission channel or a wireless transmission channel.
The intelligent card 7 with the encryption and decryption functions takes the intelligent card 7 with the encryption and decryption functions with safety, non-copying and uniqueness as a platform, can adopt 2.4G communication frequency and 13.56M communication frequency, designs an encryption and decryption processing module 12, and takes the MCU safety chip 1 as a processing and operation device to finish the encryption and decryption operation of communication data.
As shown above, the smart card 7 with encryption and decryption functions of the present invention establishes a data link between the smart terminal 5 and the MCU security chip 1 in the smart card 7 with encryption and decryption functions, and this data link can be implemented in various ways, as described above, in the present invention, there are three ways to implement:
firstly, an ISO7816 interface of the MCU security chip 1 and the smart terminal 5 can be selected as a connection channel, an APDU instruction set is extended, and data flow communication between the smart terminal 5 and the smart card 710 with encryption and decryption functions under the ISO7816 interface is realized. Such a link may be referred to as a "contact data link". This is a "contact data link" because in this way the MCU security chip 1 is connected to the smart terminal 5 through the SIM card standard copper connection contacts 4.
Secondly, another physical data transmission channel is newly opened up in a non-contact data link mode, namely, outside the technical standard of not changing ISO7816 and APDU commands, and the transmission channel can be wired or wireless. Such a link may be referred to as an "extended data link".
The "contact data link" and the "extended data link" are usually completed by the manufacturer of the intelligent terminal 5, or implemented by the intelligent terminal 5 customized by the mobile phone manufacturer, or by the platform opened by the mobile phone manufacturer.
Thirdly, the existing technical platform of the intelligent terminal 5, such as data transmission equipment with encryption and decryption functions, such as bluetooth, SWP, NFC, etc., can be used to perform appropriate equipment resource expansion only at one end of the smart card 7 with encryption and decryption functions, so as to complete matching and docking with the existing resources of the intelligent terminal 5, thereby implementing data transmission between the intelligent terminal 5 and the encryption and decryption processing module 12, and such a link can be called a "non-contact data link".
The invention relates to an intelligent card 7 with encryption and decryption functions, which is characterized in that an independent storage space is divided in a storage module of an MCU security chip 1 of an internal circuit of the card to store key information. And the MCU security chip 1 encrypts and decrypts the received communication data through a security algorithm. It should be noted that the specific implementation of the key and the encryption/decryption belongs to the prior art, and the embodiment of the present invention is not specifically described. In this embodiment, the security algorithm may adopt AES, TDES, RSA, SM2, SM4, SM9, and the like, and the MCU security chip 1 provides a secure storage space to store key information such as user keys and the like to ensure key security, and when the identifier-based encryption algorithm SM9 is selected, the two parties do not need to exchange public key information, thereby simplifying the encryption and decryption process of communication.
The core component of the intelligent card 7 with the encryption and decryption functions is an MCU security chip 1, and the MCU security chip 1 usually comprises an EEPROM, an SRAM, a FLASH, a general I/O interface, an ISO7816 interface, a built-in hardware encryption processor and the like. In the memory area of the MCU security chip 1, a specific space is opened up to store the key information. The system software of the MCU security chip 1 includes an application interface (APP function) specifically for encrypting/decrypting communication data, i.e., an encryption/decryption processing module 12. The ISO7816 interface in the MCU security chip 1 is specially used for connecting with the intelligent terminal 5 through the copper contact on the card body and according to the standard connection mode of SIM, namely, an intelligent card 7 with encryption and decryption functions for user identification which accords with telecommunication standards is formed.
The MCU security chip 1 is connected with the radio frequency driving unit 2 through a self general I/O interface, the radio frequency driving unit 2 can be a single chip or a plurality of chips, and comprises a non-contact near-distance communication function, such as supporting 2.4G radio frequency wireless transmission or 13.56M near-distance inductive coupling communication.
The radio frequency driving unit 2 is also responsible for establishing a data link between the intelligent terminal 5 and the MCU security chip 1. The radio frequency driving unit 2 includes a bluetooth protocol processing component 21 commonly used in the intelligent terminal 5, which may be an independent component in the radio frequency processing unit, and may also be shared with other radio frequency processing components (such as 2.4G radio frequency wireless communication) or operate in a time-sharing manner. The processing unit of bluetooth agreement is used for specially matching the butt joint with intelligent terminal 5's bluetooth processing signal, establishes a passageway that is used for communication data transmission specially, and intelligent terminal 5's APP customer application sends the communication data of treating encryption/decryption to MCU security chip 1's encryption/decryption processing module 12, encryption/decryption processing module 12 carries out the APP customer application that returns for intelligent terminal 5 after the encryption/decryption processing.
And the Bluetooth processing part of the radio frequency driving unit 2 automatically completes matching and butt joint with the Bluetooth part of the intelligent terminal 5 when the system is started, and establishes the non-contact data link.
In the same way, the rf driving unit 2 may also establish a link on the device communication protocol with the same protocol as the intelligent terminal 5 according to the 13.56M SWP protocol or the processing manner of the NFC protocol unit of the mobile phone itself, where such a link may be wired, for example: the SWP mode, which may also be wireless, is 13.56M protocol. In the intelligent terminal 5 supporting the SWP mode, a C6 pin in a seat of the intelligent card 7 with the encryption and decryption functions is used as an SWP signal leading-in contact, and the MCU secure chip 1 in the intelligent card 7 with the encryption and decryption functions is connected with the SWP signal through a C6 pin on a card body.
Further, referring to fig. 2, the intelligent terminal 5 of the present invention includes the intelligent card 7 with encryption and decryption functions; the intelligent terminal comprises an intelligent terminal APP 6 which is installed on the intelligent terminal 5 and can carry out text and/or voice communication, and the intelligent card 7 is connected with the intelligent terminal APP 6; the intelligent terminal 5 supports the bluetooth protocol and/or the NFC protocol.
Further, referring to fig. 3, the data communication system of the present invention includes an intelligent terminal APP 61 of an initiator, an MCU security chip 101 of the initiator, an intelligent terminal APP 62 of a receiver, and an MCU security chip 102 of the receiver;
the MCU security chip 101 of the initiator is used for carrying out encryption operation on communication data to be encrypted and returning the encrypted communication data to the intelligent terminal APP 61 of the initiator;
the intelligent terminal APP 61 of the initiator is used for sending the unique identifier of the intelligent terminal APP 62 of the receiver and communication data to be sent by the initiator to the MCU security chip 101 of the initiator through the first data link, and is also used for sending the encrypted communication data to the intelligent terminal APP 62 of the receiver;
the intelligent terminal APP 62 of the receiving party is used for sending the received encrypted communication data to the MCU security chip 102 of the receiving party through the second data link;
and the MCU security chip 102 of the receiver is used for decrypting the encrypted communication data by using the stored key information and returning the decrypted communication data to the intelligent terminal APP 62 of the receiver.
It should be noted that the establishment manners of the first data link and the second data link may include the three data link establishment manners described above, and may be any one of a "contactless data link", a "contact data link", and an "extended data link".
Further, referring to fig. 4, a data communication method according to the present invention includes:
s402, the intelligent terminal APP 61 of the initiator sends the unique identifier of the intelligent terminal APP 62 of the receiver and communication data to be sent by the initiator to the MCU security chip 101 of the initiator through a first data link;
s404, the MCU security chip 101 of the initiator uses the unique identifier as a public key to perform encryption operation on communication data to be encrypted, and returns the encrypted communication data to the intelligent terminal APP 61 of the initiator;
s406, the intelligent terminal APP 61 of the initiator sends the encrypted communication data to the intelligent terminal APP 62 of the receiver;
s408, the intelligent terminal APP 62 of the receiving party sends the received encrypted communication data to the MCU security chip 102 of the receiving party through a second data link;
s410, the MCU security chip 102 of the receiving party decrypts the encrypted communication data by using the stored key information and returns the decrypted communication data to the intelligent terminal APP 62 of the receiving party.
Further, before the S402, the method further includes:
s401, storing key information in an independent storage space divided in the MCU security chip 1; the key information is related to the unique identifier of the intelligent terminal APP 6.
In this embodiment, a data communication method is specifically implemented as follows:
(a) initializing personal key information; in the storage area of MCU safety chip 1 in the intelligent card 7(SIM card), divide out the independent storage space, store sensitive information such as user's personal cipher key and cipher key catalogue; the card is internally provided with a key generation logic, a personal key generation logic and the like which are independently completed in the card;
(b) establishing a data link; specifically, by establishing a "contact data link" and/or a "non-contact data link", an encryption/decryption processing module 12 built in the SIM card is used to perform encryption/decryption processing on communication data; the "contact data link" is usually implemented by a mobile phone terminal manufacturer, or by an open platform of a mobile phone manufacturer, or by a mobile phone customized by an operator, and the embodiment preferably uses a "non-contact data link" that is not limited to a terminal manufacturer;
(c) the intelligent terminal APP 61 of the initiator uses the unique identification (such as a telephone number, a mailbox or a micro-signal code) of the intelligent terminal APP 62 of the receiver, and transmits the text information, voice messages or voice calls of communication to the SIM card of the initiator through a non-contact data testing link, after the MCU security chip 101 of the initiator receives the information, the unique identification of the intelligent terminal APP 62 of the receiver is used as a public key to perform encryption operation and processing on communication data to be encrypted, and the encrypted result is returned to the intelligent terminal APP 61 of the initiator, and the intelligent terminal APP 61 of the initiator transmits the obtained ciphertext to the intelligent terminal APP 62 of the receiver;
(d) after receiving the data, the intelligent terminal APP 62 of the receiving party transmits the ciphertext to the SIM card of the receiving party through the non-contact data link, after receiving, the MCU security chip 102 of the receiving party decrypts and processes the ciphertext by using the key in the card, and returns the decrypted communication data to the application APP of the receiving party, so that the safe communication between the intelligent terminal APP 6 of the sending party and the intelligent terminal APP 62 of the receiving party is realized.
The above embodiments are only used to further illustrate the smart card with encryption and decryption functions, the smart terminal, the data communication system and the method of the present invention, but the present invention is not limited to the embodiments, and any simple modifications, equivalent changes and modifications made to the above embodiments according to the technical spirit of the present invention fall within the protection scope of the technical solution of the present invention.
Claims (10)
1. A kind of intellectual card with encryption and decryption function, including the card body and integrating the circuit in the card in the dimensional space of the said card body; the circuit in the card comprises an MCU safety chip and is characterized in that:
the MCU security chip stores key information; the MCU security chip is internally provided with an encryption/decryption processing module for encrypting/decrypting the received communication data sent by the intelligent terminal APP, and the encryption/decryption processing module encrypts the communication data to be decrypted through an encryption algorithm and decrypts the communication data to be decrypted through stored key information; the circuit in the card is used for connecting the MCU security chip and the intelligent terminal, the data link is used for sending the communication data received by the intelligent terminal APP to the MCU security chip and is also used for sending the communication data encrypted/decrypted by the MCU security chip to the intelligent terminal APP.
2. The smart card with encryption and decryption functions of claim 1, wherein: the intelligent terminal APP also sends the unique identification of other intelligent terminals APP communicating with the intelligent terminal APP to the MCU security chip; the MCU security chip takes the unique identifier as a public key to carry out encryption operation on communication data to be encrypted; the unique identifier comprises a telephone number, a mailbox or a micro-signal code.
3. The smart card with encryption and decryption functions of claim 1, wherein: the data link adopts a smart card with encryption and decryption functions to add a component matched with the existing data transmission equipment of the smart terminal so as to realize matching butt joint with the smart terminal, thereby realizing data transmission of the smart terminal/external card reading and encryption and decryption processing module.
4. The smart card with encryption and decryption functions of claim 3, wherein: the component is a Bluetooth protocol processing component and/or an NFC protocol processing component which are arranged in the radio frequency driving unit.
5. The smart card with encryption and decryption functions of claim 1, wherein: the data link adopts the ISO7816 interface of the MCU security chip and the intelligent terminal as a connecting channel, and realizes data transmission between the encryption and decryption processing module of the MCU security chip and the intelligent terminal under the ISO7816 interface by expanding the APDU instruction set.
6. The smart card with encryption and decryption functions of claim 1, wherein: and the data link adopts a data transmission channel which is newly added between the MCU security chip and the intelligent terminal and is embodied in a hardware mode, so that data transmission between the encryption and decryption processing module of the MCU security chip and the intelligent terminal is realized.
7. An intelligent terminal, characterized by comprising the smart card with encryption and decryption functions of any one of claims 1 to 6; the intelligent terminal comprises an intelligent terminal APP which is installed on the intelligent terminal and can carry out text and/or voice communication, and the intelligent card is connected with the intelligent terminal APP; the intelligent terminal supports a Bluetooth protocol and/or an NFC protocol.
8. A data communication system is characterized by comprising an intelligent terminal APP of an initiator, an MCU security chip of the initiator, an intelligent terminal APP of a receiver and an MCU security chip of the receiver;
the MCU security chip of the initiator is used for carrying out encryption operation on communication data to be encrypted and returning the encrypted communication data to the intelligent terminal APP of the initiator;
the intelligent terminal APP of the initiator is used for sending the unique identifier of the intelligent terminal APP of the receiver and communication data to be sent by the initiator to the MCU security chip of the initiator through a first data link, and is also used for sending encrypted communication data to the intelligent terminal APP of the receiver;
the intelligent terminal APP of the receiving party is used for sending the received encrypted communication data to the MCU security chip of the receiving party through the second data link;
and the MCU security chip of the receiver is used for decrypting the encrypted communication data by using the stored key information and returning the decrypted communication data to the intelligent terminal APP of the receiver.
9. A method of data communication, comprising:
s402, the intelligent terminal APP of the initiator sends the unique identifier of the intelligent terminal APP of the receiver and communication data to be sent by the initiator to the MCU security chip of the initiator through a first data link;
s404, the MCU security chip of the initiator uses the unique identifier as a public key to perform encryption operation on communication data to be encrypted, and returns the encrypted communication data to the intelligent terminal APP of the initiator;
s406, the intelligent terminal APP of the initiator sends the encrypted communication data to the intelligent terminal APP of the receiver;
s408, the intelligent terminal APP of the receiving party sends the received encrypted communication data to the MCU security chip of the receiving party through a second data link;
s410, the MCU security chip of the receiver decrypts the encrypted communication data by using the stored key information, and returns the decrypted communication data to the intelligent terminal APP of the receiver.
10. The data communication method according to claim 9, wherein S402 is preceded by:
s401, storing key information in an independent storage space divided in the MCU security chip; the key information is related to the unique identifier of the intelligent terminal APP.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110431473.7A CN113365268A (en) | 2021-04-21 | 2021-04-21 | Intelligent card with encryption and decryption functions, intelligent terminal, data communication system and method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110431473.7A CN113365268A (en) | 2021-04-21 | 2021-04-21 | Intelligent card with encryption and decryption functions, intelligent terminal, data communication system and method |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN113365268A true CN113365268A (en) | 2021-09-07 |
Family
ID=77525381
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202110431473.7A Pending CN113365268A (en) | 2021-04-21 | 2021-04-21 | Intelligent card with encryption and decryption functions, intelligent terminal, data communication system and method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN113365268A (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN114827961A (en) * | 2022-04-12 | 2022-07-29 | 北京中电华大电子设计有限责任公司 | User identification card, intelligent terminal and user identification card application method |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103164738A (en) * | 2013-02-06 | 2013-06-19 | 厦门盛华电子科技有限公司 | Mobile phone user identification card based on mobile payment multichannel digital certificate |
| CN107092954A (en) * | 2017-06-05 | 2017-08-25 | 智坤(江苏)半导体有限公司 | A kind of Internet of Things chip and the multi-frequency electrical field coupled communication system based on the chip |
| US20180081741A1 (en) * | 2015-08-26 | 2018-03-22 | Polar Electro Oy | Multi-function button for wearable device |
| CN108012268A (en) * | 2017-12-08 | 2018-05-08 | 北京虎符信息技术有限公司 | A kind of mobile phone terminal SIM card and the method for safe handling App, medium |
| CN112329904A (en) * | 2020-09-30 | 2021-02-05 | 厦门盛华电子科技有限公司 | Mobile phone user identification card, face identification device and identification method |
-
2021
- 2021-04-21 CN CN202110431473.7A patent/CN113365268A/en active Pending
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103164738A (en) * | 2013-02-06 | 2013-06-19 | 厦门盛华电子科技有限公司 | Mobile phone user identification card based on mobile payment multichannel digital certificate |
| US20180081741A1 (en) * | 2015-08-26 | 2018-03-22 | Polar Electro Oy | Multi-function button for wearable device |
| CN107092954A (en) * | 2017-06-05 | 2017-08-25 | 智坤(江苏)半导体有限公司 | A kind of Internet of Things chip and the multi-frequency electrical field coupled communication system based on the chip |
| CN108012268A (en) * | 2017-12-08 | 2018-05-08 | 北京虎符信息技术有限公司 | A kind of mobile phone terminal SIM card and the method for safe handling App, medium |
| CN112329904A (en) * | 2020-09-30 | 2021-02-05 | 厦门盛华电子科技有限公司 | Mobile phone user identification card, face identification device and identification method |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN114827961A (en) * | 2022-04-12 | 2022-07-29 | 北京中电华大电子设计有限责任公司 | User identification card, intelligent terminal and user identification card application method |
| CN114827961B (en) * | 2022-04-12 | 2024-02-06 | 北京中电华大电子设计有限责任公司 | User identification card, intelligent terminal and user identification card application method |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US7603083B2 (en) | Controlling visibility of a wireless device in discoverable mode | |
| EP2671398B1 (en) | Subscriber identity module provisioning | |
| EP2732606B1 (en) | Transferring a voice call | |
| CN106792637B (en) | International mobile equipment identification number wiring method, device and mobile terminal | |
| KR20160143333A (en) | Method for Double Certification by using Double Channel | |
| CN111400737A (en) | Multi-application physical isolation encrypted SIM card implementation device, method and terminal | |
| US7796979B2 (en) | Controlling visibility of a wireless device | |
| CN101841783A (en) | Short message safety communication method, system and device based on STK (SIM Tool Kit) business | |
| CN113365268A (en) | Intelligent card with encryption and decryption functions, intelligent terminal, data communication system and method | |
| US11076282B2 (en) | Telecommunications apparatus with a radio-linked smart card | |
| CN105610580A (en) | External speech encryption device based on smart phone and implementation method thereof | |
| EP2360987B1 (en) | Device and method for coupling a cellular telecommunication device to an NFC terminal | |
| JP2022533274A (en) | Quantum resistant SIM card | |
| KR101603476B1 (en) | Method for Dual Certification by using Dual Channel | |
| KR101777044B1 (en) | Card for Generating One Time Password based on Asynchronous Local Area Radio Communication | |
| KR101846646B1 (en) | Method for Providing Security Communication based on Asynchronous Local Area Radio Communication | |
| CA2554325C (en) | Controlling visibility of a wireless device in discoverable mode | |
| KR101513435B1 (en) | Method for Protecting Key Input, and Device for Key Input Protection | |
| KR20190047557A (en) | Earphone Device for Providing OTP by using Asynchronous Local Area Radio Communication | |
| JP2024054260A (en) | Quantum-resistant SIM card | |
| KR101704249B1 (en) | Method for Controlling Integrated Circuit Chip by using Distributed Processing | |
| KR20190047558A (en) | Method for Providing One Time Password by using Asynchronous Local Area Radio Communication of Earphone Device | |
| CN113596827A (en) | Key generation method and device, electronic equipment and storage medium | |
| KR20160143336A (en) | Method for Dual Authentication using Dual Channel | |
| EP1760955A1 (en) | Controlling visibility of a wireless device |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |